Adjusting scans to increase protection on your client computers

Article:HOWTO55307  |  Created: 2011-06-29  |  Updated: 2011-12-16  |  Article URL http://www.symantec.com/docs/HOWTO55307
Article Type
How To

Product(s)

Subject

Languages

Adjusting scans to increase protection on your client computers

Symantec Endpoint Protection provides a high level of security by default. You can increase the protection even more. The settings are different for clients that run on Windows computers and clients that run on Mac computers.

Note:

If you increase the protection on your client computers, you might impact computer performance.

Table: Adjusting scans to increase protection on Windows computers

Task

Description

Lock scan settings

Some settings are locked by default; you can lock additional settings so that users cannot change the protection on their computers.

Modify settings for administrator-defined scans

You should check or modify the following options:

  • Scan performance

    Set the scan tuning to Best Scan Performance. The setting, however, might affect your client computer performance. Scans run even if the computer is not idle.

  • Scheduled scan duration

    By default, scheduled scans run until the specified time interval expires and then resume when the client computer is idle. You can set the scan duration to Scan until finished.

  • Use Insight Lookup

    Insight Lookup uses the latest definition set from the cloud and information from the Insight reputation database to scan and make decisions about files. You should make sure that Insight Lookup is enabled. Insight Lookup settings are similar to the settings for Download Insight.

See Customizing administrator-defined scans for clients that run on Windows computers.

Specify stronger scan detection actions

Specify Quarantine, Delete, or Terminate actions for detections.

Note:

Be careful when you use Delete or Terminate for security risk detections. The action might cause some legitimate applications to lose functionality.

See Changing the action that Symantec Endpoint Protection takes when it makes a detection.

Increase the level of Bloodhound protection

Bloodhound locates and isolates the logical regions of a file to detect virus-like behavior. You can change the detection level from Automatic to Aggressive to increase the protection on your computers. The Aggressive setting, however, is likely to produce more false positives.

See Modifying global scan settings for Windows clients.

Adjust Auto-Protect settings

You can change the following options:

  • File cache

    You can disable the file cache so that Auto-Protect rescans good files.

  • Network settings

    By default, files on network drives are scanned only when they are executed. You can disable this option.

See Customizing Auto-Protect for Windows clients.

Table: Adjusting scans to increase protection on Mac computers

Task

Description

Lock scan settings

Some settings are locked by default; you can lock additional settings so that users cannot change the protection on their computers.

Specify stronger scan detection actions

Specify Quarantine, Delete, or Terminate actions for detections.

Note:

Be careful when you use Delete or Terminate for security risk detections. The action might cause some legitimate applications to lose functionality.

See Changing the action that Symantec Endpoint Protection takes when it makes a detection.

Legacy ID



v49387628_v59371754


Article URL http://www.symantec.com/docs/HOWTO55307


Terms of use for this information are found in Legal Notices

Please Sign In

Login using SymAccount.

Knowledge Base Search

Knowledge Base Search

Rate this Article

Help us improve your support experience.

MySymantec

MySymantec

Contacting Support

Contacting Support